[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: syncrepl syncing but not updating, contextCNS missing and schemacheck off

indeed , https://www.openldap.org/doc/admin24/replication.html#Delta-syncrepl seems to be far more efficient in most cases, I'll give it a try , thanks . 

back to my contextCNS missing when schemachecking if On , here are the full cn=config requested:
master : https://filez.imtbs-tsp.eu/kj557s7ps
replica: https://filez.imtbs-tsp.eu/lgcznk11jp

be aware that I load lots of schema [1], that's why those config are a bit large
I have also relatively complex ACLs (13 lignes) , I tried to simplified them while debuging but with no success in regard of my pb .

thanks a lot for your help and analyse .


[1]
include         /usr/local/openldap/etc/openldap/schema/core.schema
include         /usr/local/openldap/etc/openldap/schema/corba.schema
include         /usr/local/openldap/etc/openldap/schema/cosine.schema
include         /usr/local/openldap/etc/openldap/schema/duaconf.schema
include         /usr/local/openldap/etc/openldap/schema/dyngroup.schema
include         /usr/local/openldap/etc/openldap/schema/inetorgperson.schema
include         /usr/local/openldap/etc/openldap/schema/java.schema
include         /usr/local/openldap/etc/openldap/schema/misc.schema
include         /usr/local/openldap/etc/openldap/schema/nis.schema
include         /usr/local/openldap/etc/openldap/schema/openldap.schema
include         /usr/local/openldap/etc/openldap/schema/ppolicy.schema
include         /usr/local/openldap/etc/openldap/schema/collective.schema
include         /usr/local/openldap/etc/openldap/schema/supann-2019-02-05.schema
include         /usr/local/openldap/etc/openldap/schema/eduperson-200412.schema
include         /usr/local/openldap/etc/openldap/schema/schac-20090326-1.4.0.schema
include         /usr/local/openldap/etc/openldap/schema/samba.schema
include         /usr/local/openldap/etc/openldap/schema/autofs.schema
include         /usr/local/openldap/etc/openldap/schema/int.schema


Jehan PROCACCIA 
Ingénieur systèmes et réseaux 
Membre du comité de pilotage REVE : 
Réseau d’Évry Val d'Essonne et THD 
+33160764436 
9 rue Charles Fourier - 91011 Evry Cedex 
[ https://www.imt-bs.eu/ | www.imt-bs.eu ] - [ https://www.telecom-sudparis.eu/ | www.telecom-sudparis.eu ]

----- Mail original -----
De: "Quanah Gibson-Mount" <quanah@symas.com>
À: "jehan procaccia" <jehan.procaccia@imtbs-tsp.eu>, openldap-technical@openldap.org
Envoyé: Jeudi 13 Février 2020 22:50:16
Objet: Re: syncrepl syncing but not updating, contextCNS missing and schemacheck off

--On Thursday, February 13, 2020 8:53 AM +0100 jehan.procaccia@imtbs-tsp.eu 
wrote:

>
> I am running on a centos 8 system that does'nt provide openldap-server
> packages as you might know

Ok, thanks. I wanted to be sure it was something recent prior to going to 
far into the depths of syncrepl. :)

As a general note, I do see that you're using standard Syncrepl.  I would 
highly advise using delta-syncrepl instead.

For your specific issue, it would be useful to have a copy of the cn=config 
database (slapcat -n 0 -l /tmp/config.ldif) from both the replica and the 
master, with all passwords scrubbed.  The syncrepl statement on its own 
doesn't really provide any useful information as far potentially being able 
to diagnose issues.

Regards,
Quanah


--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>